Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Computer Freezes Randomly, mainly after being left on for a long time.


Best Answer RKinner , 29 October 2015 - 08:40 PM

Good Luck Go to the full post »


  • Please log in to reply

#31
lanznoob

lanznoob

    Member

  • Member
  • PipPip
  • 10 posts

Yes, it is the latest version of SpeedFan. The result of Core temp and SpeedFan are here at the photos. First photo is when I'm not using it for like a hour and second photo is when im playing my game.

Attached Thumbnails

  • 12.jpg
  • 13.jpg

Edited by lanznoob, 09 August 2017 - 05:36 AM.

  • 0

Advertisements


#32
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,024 posts
  • MVP

Are you still running Win 8.1 or dis you upgrade to 10?

 

Apparently the CPU temps and the hard drive temps are both OK.  I've seen speedfan pick up odd values before so probably that's what is happening with the system & aux values.  Odd that speedfan doesn't even show a fan speed.  Is the fan running?

 

Does the GPU temp change under load?  Get GPU-Z  https://www.techpowerup.com/download/techpowerup-gpu-z/ 

 

It's also possible that you have a memory leak.  Get Process Explorer:

 

Save it to your desktop then run it (Vista or Win7+ - right click and Run As Administrator).  
 
View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures
 
 
Click twice on the Working Mmeory column header  to sort things by Memory usage with the big hitters at the top.  
 
Wait a full minute then:
 
File, Save As, Save.  Note the file name.   Open the file  on your desktop and copy and paste the text to a reply.
 
Wait 15 minutes.  Do what you normally do when the trouble occurs but don't start any new programs.  Create a new log and post it.
 
Let's also look at the event viewer.
 
1. Please download the Event Viewer Tool by Vino Rosso
and save it to your Desktop:
2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:
 
* System
4. Under 'Select type to list', select:
* Error
* Warning
 
 
Then use the 'Number of events' as follows:
 
 
1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.
 
 
Please post the Output log in your next reply then repeat but select Application.  (Each time you run VEW it overwrites the log so copy the first one to a Reply or rename it before running it a second time.)
 

  • 0

#33
lanznoob

lanznoob

    Member

  • Member
  • PipPip
  • 10 posts

Im Using Windows 7 as an OS. I tried to save the procexp as a text but the columns are not align because some of the processes don't have values of other columns. I'll paste it here and send a photo of it also. I'll be sending 2 photos of procexp.

 

/* Process CPU Private Bytes Working Set PID Verified Signer
chrome.exe 0.06 127,332 K 160,516 K 3716 (Verified) Google Inc
ekrn.exe < 0.01 34,368 K 101,932 K 788 (Verified) ESET
chrome.exe 0.03 80,748 K 100,716 K 4812 (Verified) Google Inc
svchost.exe 89,960 K 93,612 K 1040 (Verified) Microsoft Windows
chrome.exe 0.02 77,932 K 82,424 K 2140 (Verified) Google Inc
Steam.exe 0.23 56,148 K 78,964 K 5616 (Verified) Valve
explorer.exe 0.02 41,152 K 61,056 K 1692 (Verified) Microsoft Windows
chrome.exe 50,792 K 56,084 K 3612 (Verified) Google Inc
svchost.exe < 0.01 34,864 K 45,044 K 1080 (Verified) Microsoft Windows
chrome.exe 37,952 K 44,788 K 5864 (Verified) Google Inc
procexp.exe 2.28 22,664 K 40,016 K 5840 (Verified) Microsoft Corporation
steamwebhelper.exe 0.01 21,232 K 38,324 K 4976 (Verified) Valve
svchost.exe 145,648 K 33,916 K 5948 (Verified) Microsoft Windows
dwm.exe 0.34 30,572 K 31,576 K 1656 (Verified) Microsoft Windows
egui.exe < 0.01 19,512 K 28,172 K 3904 (Verified) ESET
chrome.exe 21,612 K 24,016 K 5460 (Verified) Google Inc
nvcontainer.exe 0.01 20,444 K 23,088 K 2736 (Verified) NVIDIA Corporation
SearchIndexer.exe < 0.01 33,644 K 19,228 K 3352 (Verified) Microsoft Windows
audiodg.exe 18,384 K 17,136 K 5808 (Verified) Microsoft Windows
svchost.exe 22,340 K 16,764 K 1008 (Verified) Microsoft Windows
svchost.exe 0.01 7,980 K 13,784 K 1216 (Verified) Microsoft Windows
nvcontainer.exe 0.02 5,856 K 12,432 K 392 (Verified) NVIDIA Corporation
svchost.exe 12,964 K 11,872 K 1568 (Verified) Microsoft Windows
SteamService.exe < 0.01 7,608 K 11,832 K 1264 (Verified) Valve
svchost.exe < 0.01 12,772 K 11,468 K 1296 (Verified) Microsoft Windows
svchost.exe < 0.01 9,900 K 11,088 K 1916 (Verified) Microsoft Windows
taskhost.exe < 0.01 11,232 K 10,964 K 1592 (Verified) Microsoft Windows
NvTelemetryContainer.exe < 0.01 5,512 K 10,160 K 512 (Verified) NVIDIA Corporation
csrss.exe 0.13 1,804 K 9,292 K 508 (Verified) Microsoft Windows
svchost.exe 4,960 K 8,964 K 1840 (Verified) Microsoft Windows
services.exe 4,780 K 8,800 K 548 (Verified) Microsoft Windows
lsass.exe < 0.01 4,012 K 8,444 K 572 (Verified) Microsoft Windows
svchost.exe 0.01 5,256 K 8,440 K 2616 (Verified) Microsoft Windows
wmpnetwk.exe < 0.01 8,348 K 7,888 K 3620 (Verified) Microsoft Windows
spoolsv.exe 4,692 K 7,668 K 1472 (Verified) Microsoft Windows
SolvusoftTray.exe < 0.01 3,752 K 7,524 K 3004 (Verified) Installer Wizard
svchost.exe 0.06 3,720 K 7,424 K 728 (Verified) Microsoft Windows
USBGuard.exe 0.01 2,016 K 7,080 K 2948 (No signature was present in the subject) Zbshareware Lab
sppsvc.exe 2,116 K 7,044 K 1780 (Verified) Microsoft Windows
WmiPrvSE.exe 3,068 K 5,936 K 5636 (Verified) Microsoft Windows
svchost.exe 3,172 K 5,900 K 864 (Verified) Microsoft Windows
ggdllhost.exe 2,652 K 5,848 K 1512 (Verified) Garena Online Pte Ltd
chrome.exe 3,036 K 5,488 K 4156 (Verified) Google Inc
winlogon.exe 2,228 K 4,992 K 656 (Verified) Microsoft Windows
svchost.exe 1,516 K 4,916 K 2064 (Verified) Microsoft Windows
WmiPrvSE.exe 2,016 K 4,872 K 3476 (Verified) Microsoft Windows
taskeng.exe 1,488 K 4,820 K 1908 (Verified) Microsoft Windows
svchost.exe 2,272 K 4,796 K 1184 (Verified) Microsoft Windows
chrome.exe 1,328 K 4,724 K 5748 (Verified) Google Inc
sqlwriter.exe 1,436 K 4,500 K 1332 (Verified) Microsoft Corporation
taskhost.exe 1,276 K 4,408 K 5516 (Verified) Microsoft Windows
IPROSetMonitor.exe 1,160 K 4,232 K 1932 (Verified) Intel® INTELND1617S2
csrss.exe < 0.01 2,484 K 3,976 K 444 (Verified) Microsoft Windows
sqlbrowser.exe 976 K 3,080 K 148 (Verified) Microsoft Corporation
lsm.exe 1,360 K 3,048 K 580 (Verified) Microsoft Windows
wininit.exe 924 K 3,036 K 496 (Verified) Microsoft Windows
sqlservr.exe < 0.01 40,680 K 2,736 K 1984 (Verified) Microsoft Corporation
conhost.exe 776 K 2,716 K 6136 (Verified) Microsoft Windows
ggdllhost.exe 1,524 K 1,660 K 1268 (Verified) Garena Online Pte Ltd
NVIDIA Web Helper.exe 0.01 24,312 K 1,316 K 6060 (Verified) NVIDIA Corporation
smss.exe 312 K 836 K 260 (Verified) Microsoft Windows
GoogleCrashHandler.exe 1,136 K 528 K 2000 (Verified) Google Inc
System 0.09 48 K 220 K 4
System Idle Process 96.12 0 K 12 K 0
Interrupts 0.50 0 K 0 K n/a */ This is the Procexp's text
 
/* Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 10/08/2017 7:17:10 PM
 
Note: All dates below are in the format dd/mm/yyyy
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 09/08/2017 10:18:35 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
Log: 'System' Date/Time: 08/08/2017 1:14:04 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
Log: 'System' Date/Time: 28/07/2017 1:42:54 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
Log: 'System' Date/Time: 22/07/2017 11:14:44 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
Log: 'System' Date/Time: 22/07/2017 2:41:10 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
Log: 'System' Date/Time: 22/07/2017 9:38:57 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
Log: 'System' Date/Time: 22/07/2017 6:48:41 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
Log: 'System' Date/Time: 22/07/2017 2:01:45 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
Log: 'System' Date/Time: 21/07/2017 1:57:05 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
Log: 'System' Date/Time: 21/07/2017 1:51:02 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
Log: 'System' Date/Time: 21/07/2017 11:38:31 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
Log: 'System' Date/Time: 21/07/2017 5:11:08 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
Log: 'System' Date/Time: 20/07/2017 11:25:23 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
Log: 'System' Date/Time: 19/07/2017 3:08:42 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
Log: 'System' Date/Time: 19/07/2017 3:55:22 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
Log: 'System' Date/Time: 19/07/2017 3:02:42 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
Log: 'System' Date/Time: 19/07/2017 2:00:28 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
Log: 'System' Date/Time: 18/07/2017 1:03:16 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
Log: 'System' Date/Time: 18/07/2017 12:16:41 AM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
Log: 'System' Date/Time: 17/07/2017 2:12:39 PM
Type: Critical Category: 63
Event: 41 Source: Microsoft-Windows-Kernel-Power
The system has rebooted without cleanly shutting down first. This error could be caused if the system stopped responding, crashed, or lost power unexpectedly.
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 10/08/2017 11:02:19 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
Log: 'System' Date/Time: 10/08/2017 11:02:19 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
Log: 'System' Date/Time: 10/08/2017 11:02:19 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
Log: 'System' Date/Time: 10/08/2017 11:02:19 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
Log: 'System' Date/Time: 10/08/2017 11:02:19 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
Log: 'System' Date/Time: 10/08/2017 11:02:19 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
Log: 'System' Date/Time: 10/08/2017 11:02:18 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
Log: 'System' Date/Time: 10/08/2017 11:02:18 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
Log: 'System' Date/Time: 10/08/2017 11:02:18 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
Log: 'System' Date/Time: 10/08/2017 11:02:18 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
Log: 'System' Date/Time: 10/08/2017 11:02:18 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
Log: 'System' Date/Time: 10/08/2017 11:02:18 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
Log: 'System' Date/Time: 10/08/2017 11:02:18 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
Log: 'System' Date/Time: 10/08/2017 11:02:18 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
Log: 'System' Date/Time: 10/08/2017 11:02:18 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
Log: 'System' Date/Time: 10/08/2017 11:02:18 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
Log: 'System' Date/Time: 10/08/2017 11:02:18 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
Log: 'System' Date/Time: 10/08/2017 11:02:18 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
Log: 'System' Date/Time: 10/08/2017 11:02:18 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
Log: 'System' Date/Time: 10/08/2017 11:02:17 AM
Type: Error Category: 0
Event: 13 Source: nvlddmkm
The event description cannot be found.
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 10/08/2017 11:02:27 AM
Type: Warning Category: 0
Event: 4101 Source: Display
Display driver nvlddmkm stopped responding and has successfully recovered.
 
Log: 'System' Date/Time: 08/08/2017 11:39:14 AM
Type: Warning Category: 0
Event: 4101 Source: Display
Display driver nvlddmkm stopped responding and has successfully recovered.
 
Log: 'System' Date/Time: 08/08/2017 9:14:06 AM
Type: Warning Category: 0
Event: 51 Source: Disk
An error was detected on device \Device\Harddisk0\DR18 during a paging operation.
 
Log: 'System' Date/Time: 08/08/2017 9:14:06 AM
Type: Warning Category: 0
Event: 51 Source: Disk
An error was detected on device \Device\Harddisk0\DR18 during a paging operation.
 
Log: 'System' Date/Time: 08/08/2017 9:14:06 AM
Type: Warning Category: 0
Event: 51 Source: Disk
An error was detected on device \Device\Harddisk0\DR18 during a paging operation.
 
Log: 'System' Date/Time: 08/08/2017 9:14:05 AM
Type: Warning Category: 0
Event: 51 Source: Disk
An error was detected on device \Device\Harddisk0\DR18 during a paging operation.
 
Log: 'System' Date/Time: 08/08/2017 9:14:05 AM
Type: Warning Category: 0
Event: 51 Source: Disk
An error was detected on device \Device\Harddisk0\DR18 during a paging operation.
 
Log: 'System' Date/Time: 08/08/2017 9:14:05 AM
Type: Warning Category: 0
Event: 51 Source: Disk
An error was detected on device \Device\Harddisk0\DR18 during a paging operation.
 
Log: 'System' Date/Time: 08/08/2017 9:14:05 AM
Type: Warning Category: 0
Event: 51 Source: Disk
An error was detected on device \Device\Harddisk0\DR18 during a paging operation.
 
Log: 'System' Date/Time: 08/08/2017 9:14:05 AM
Type: Warning Category: 0
Event: 51 Source: Disk
An error was detected on device \Device\Harddisk0\DR18 during a paging operation.
 
Log: 'System' Date/Time: 08/08/2017 9:14:05 AM
Type: Warning Category: 0
Event: 51 Source: Disk
An error was detected on device \Device\Harddisk0\DR18 during a paging operation.
 
Log: 'System' Date/Time: 08/08/2017 9:14:05 AM
Type: Warning Category: 0
Event: 51 Source: Disk
An error was detected on device \Device\Harddisk0\DR18 during a paging operation.
 
Log: 'System' Date/Time: 08/08/2017 9:14:05 AM
Type: Warning Category: 0
Event: 51 Source: Disk
An error was detected on device \Device\Harddisk0\DR18 during a paging operation.
 
Log: 'System' Date/Time: 08/08/2017 9:14:05 AM
Type: Warning Category: 0
Event: 51 Source: Disk
An error was detected on device \Device\Harddisk0\DR18 during a paging operation.
 
Log: 'System' Date/Time: 08/08/2017 9:14:05 AM
Type: Warning Category: 0
Event: 51 Source: Disk
An error was detected on device \Device\Harddisk0\DR18 during a paging operation.
 
Log: 'System' Date/Time: 08/08/2017 9:14:05 AM
Type: Warning Category: 0
Event: 51 Source: Disk
An error was detected on device \Device\Harddisk0\DR18 during a paging operation.
 
Log: 'System' Date/Time: 08/08/2017 9:14:05 AM
Type: Warning Category: 0
Event: 51 Source: Disk
An error was detected on device \Device\Harddisk0\DR18 during a paging operation.
 
Log: 'System' Date/Time: 08/08/2017 9:14:05 AM
Type: Warning Category: 0
Event: 51 Source: Disk
An error was detected on device \Device\Harddisk0\DR18 during a paging operation.
 
Log: 'System' Date/Time: 08/08/2017 9:14:05 AM
Type: Warning Category: 0
Event: 51 Source: Disk
An error was detected on device \Device\Harddisk0\DR18 during a paging operation.
 
Log: 'System' Date/Time: 08/08/2017 9:14:05 AM
Type: Warning Category: 0
Event: 51 Source: Disk
An error was detected on device \Device\Harddisk0\DR18 during a paging operation. */ VEW's text
 
 

 

Attached Thumbnails

  • 1121.jpg
  • 1122.jpg

  • 0

#34
lanznoob

lanznoob

    Member

  • Member
  • PipPip
  • 10 posts

A little more information. This balloon pops up when my game crashes.

Attached Thumbnails

  • stopped.jpg

  • 0

#35
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,024 posts
  • MVP
Log: 'System' Date/Time: 08/08/2017 9:14:05 AM
Type: Warning Category: 0
Event: 51 Source: Disk
An error was detected on device \Device\Harddisk0\DR18 during a paging operation.
 

 

 

Not sure which drive is  \Device\Harddisk0\DR18  but you need to run a disk check on it.
 
Your freezing error is common and appears to be nvidia related.  Have you recently upgrade the BIOS or the Nvidia drivers?
See:
 
 
 
 
Not sure what you are doing with Process Explorer.  Don't care about the formatting.  Just want to see two logs about 15 minutes apart with the heavy memory users at the top.  First couple of perocesses are all I care about.  We are looking to see if the working memory for one process is slowing increasing.  This is an indication of a memory leak where a driver doesn't return no longer used memory and keeps grabbing more.  

  • 0

#36
lanznoob

lanznoob

    Member

  • Member
  • PipPip
  • 10 posts

first try:

Process CPU Private Bytes Working Set PID Verified Signer
svchost.exe 8.48 191,892 K 127,476 K 1076 (Verified) Microsoft Windows
ekrn.exe 0.08 20,816 K 88,516 K 816 (Verified) ESET
utorrentie.exe < 0.01 28,868 K 45,168 K 1128 (Verified) BitTorrent Inc
utorrentie.exe 22,292 K 43,516 K 3668 (Verified) BitTorrent Inc
utorrentie.exe < 0.01 28,524 K 43,096 K 1692 (Verified) BitTorrent Inc
procexp.exe 1.27 19,032 K 35,164 K 5488 (Verified) Microsoft Corporation
explorer.exe 0.03 20,992 K 34,956 K 1288 (Verified) Microsoft Windows
nvcontainer.exe 0.01 18,644 K 28,176 K 2256 (Verified) NVIDIA Corporation
dwm.exe 0.17 29,528 K 27,496 K 1272 (Verified) Microsoft Windows
egui.exe < 0.01 15,184 K 25,500 K 3840 (Verified) ESET
wmpnetwk.exe 8,288 K 21,768 K 3924 (Verified) Microsoft Windows
uTorrent.exe 0.06 12,132 K 21,532 K 3008 (Verified) BitTorrent Inc
NVIDIA Web Helper.exe 0.75 10,144 K 17,552 K 5080 (Verified) NVIDIA Corporation
audiodg.exe 18,012 K 17,060 K 1172
nvcontainer.exe 0.03 5,852 K 15,772 K 1892 (Verified) NVIDIA Corporation
svchost.exe 0.01 14,632 K 14,792 K 1000 (Verified) Microsoft Windows
svchost.exe 11,896 K 13,612 K 1516 (Verified) Microsoft Windows
svchost.exe 0.01 7,620 K 13,460 K 1236 (Verified) Microsoft Windows
svchost.exe 5,136 K 12,160 K 1036 (Verified) Microsoft Windows
svchost.exe 0.02 12,424 K 12,004 K 1316 (Verified) Microsoft Windows
taskhost.exe < 0.01 11,844 K 11,992 K 860 (Verified) Microsoft Windows
WmiPrvSE.exe 7,528 K 11,780 K 2708
svchost.exe < 0.01 8,212 K 10,364 K 1388 (Verified) Microsoft Windows
svchost.exe 0.01 5,128 K 9,856 K 3764 (Verified) Microsoft Windows
WmiPrvSE.exe 4,024 K 9,804 K 2672
NvTelemetryContainer.exe < 0.01 4,464 K 9,672 K 1944 (Verified) NVIDIA Corporation
lsass.exe < 0.01 3,784 K 9,476 K 648 (Verified) Microsoft Windows
spoolsv.exe 4,844 K 9,020 K 1428 (Verified) Microsoft Windows
SolvusoftTray.exe < 0.01 3,720 K 8,728 K 3000 (Verified) Installer Wizard
services.exe 0.01 5,284 K 8,200 K 640
TrustedInstaller.exe 4.48 3,612 K 8,156 K 4532 (Verified) Microsoft Windows
svchost.exe 3,352 K 7,564 K 756 (Verified) Microsoft Windows
USBGuard.exe 0.02 1,988 K 7,500 K 2640 (No signature was present in the subject) Zbshareware Lab
sppsvc.exe 2,032 K 7,208 K 4288 (Verified) Microsoft Windows
ggdllhost.exe 2,344 K 6,672 K 2424
NVDisplay.Container.exe 1,932 K 6,220 K 840 (Verified) NVIDIA Corporation
SearchIndexer.exe 0.01 12,768 K 6,156 K 3504 (Verified) Microsoft Windows
svchost.exe 3,556 K 6,100 K 1624 (Verified) Microsoft Windows
Scheduler.exe < 0.01 9,016 K 5,856 K 4688
winlogon.exe 2,204 K 5,816 K 600
svchost.exe 0.03 2,700 K 5,632 K 892 (Verified) Microsoft Windows
WmiPrvSE.exe 2,136 K 5,196 K 4244
sqlwriter.exe 1,532 K 4,984 K 332 (Verified) Microsoft Corporation
ggdllhost.exe 1,520 K 4,864 K 2368
taskeng.exe 1,512 K 4,812 K 4824 (Verified) Microsoft Windows
csrss.exe 0.07 1,480 K 4,800 K 544
svchost.exe 1,788 K 4,664 K 1204 (Verified) Microsoft Windows
taskeng.exe 1,404 K 4,580 K 2284
IPROSetMonitor.exe < 0.01 1,172 K 4,472 K 1720 (Verified) Intel® INTELND1617S2
svchost.exe 1,284 K 4,380 K 348 (Verified) Microsoft Windows
dllhost.exe 1,100 K 4,184 K 3260
svchost.exe 1,196 K 4,060 K 4888 (Verified) Microsoft Windows
taskeng.exe 1,096 K 3,852 K 2192
nvnodejslauncher.exe 0.03 912 K 3,588 K 2652 (Verified) NVIDIA Corporation
wininit.exe 916 K 3,352 K 536
sqlbrowser.exe 976 K 3,348 K 1984 (Verified) Microsoft Corporation
lsm.exe 1,320 K 3,216 K 656
csrss.exe < 0.01 1,240 K 3,192 K 472
conhost.exe < 0.01 768 K 2,856 K 5124 (Verified) Microsoft Windows
svchost.exe 596 K 2,096 K 4504 (Verified) Microsoft Windows
sqlservr.exe 42,688 K 1,912 K 1756 (Verified) Microsoft Corporation
smss.exe 312 K 868 K 296
GoogleCrashHandler.exe 1,176 K 808 K 2316
System 0.33 52 K 588 K 4
System Idle Process 83.48 0 K 12 K 0
Interrupts 0.63 0 K 0 K n/a
 
After 15 minutes:
Process CPU Private Bytes Working Set PID Verified Signer
utorrentie.exe < 0.01 29,052 K 136,964 K 1128 (Verified) BitTorrent Inc
utorrentie.exe < 0.01 28,556 K 135,816 K 1692 (Verified) BitTorrent Inc
utorrentie.exe < 0.01 22,264 K 109,716 K 3668 (Verified) BitTorrent Inc
svchost.exe 1.44 94,184 K 96,776 K 1036 (Verified) Microsoft Windows
ekrn.exe 0.01 19,232 K 68,456 K 816 (Verified) ESET
explorer.exe 0.03 26,140 K 36,068 K 1288 (Verified) Microsoft Windows
procexp.exe 2.07 18,276 K 33,896 K 4684 (Verified) Microsoft Corporation
svchost.exe < 0.01 24,576 K 32,104 K 1076 (Verified) Microsoft Windows
svchost.exe 0.01 47,272 K 31,856 K 4888 (Verified) Microsoft Windows
dwm.exe 0.34 30,428 K 25,276 K 1272 (Verified) Microsoft Windows
uTorrent.exe 0.06 12,108 K 17,236 K 3008 (Verified) BitTorrent Inc
nvcontainer.exe 0.01 18,804 K 16,128 K 2256 (Verified) NVIDIA Corporation
egui.exe < 0.01 15,136 K 15,960 K 3840 (Verified) ESET
svchost.exe 22,164 K 13,444 K 1000 (Verified) Microsoft Windows
svchost.exe 11,716 K 12,592 K 1516 (Verified) Microsoft Windows
audiodg.exe 19,192 K 12,324 K 1172
nvcontainer.exe 0.02 5,836 K 10,920 K 1892 (Verified) NVIDIA Corporation
SearchIndexer.exe < 0.01 19,004 K 10,456 K 3504 (Verified) Microsoft Windows
taskhost.exe < 0.01 11,496 K 10,416 K 860 (Verified) Microsoft Windows
svchost.exe < 0.01 9,064 K 9,024 K 1388 (Verified) Microsoft Windows
svchost.exe < 0.01 7,444 K 8,580 K 1236 (Verified) Microsoft Windows
NvTelemetryContainer.exe < 0.01 5,336 K 8,380 K 1944 (Verified) NVIDIA Corporation
svchost.exe < 0.01 12,108 K 7,716 K 1316 (Verified) Microsoft Windows
lsass.exe 3,960 K 7,028 K 648 (Verified) Microsoft Windows
svchost.exe 4,268 K 6,868 K 1624 (Verified) Microsoft Windows
svchost.exe 5,000 K 6,704 K 3764 (Verified) Microsoft Windows
SolvusoftTray.exe < 0.01 3,672 K 6,616 K 3000 (Verified) Installer Wizard
SearchProtocolHost.exe < 0.01 2,080 K 6,392 K 5064
USBGuard.exe 0.89 2,008 K 6,272 K 2640 (No signature was present in the subject) Zbshareware Lab
sppsvc.exe 2,004 K 6,000 K 4288 (Verified) Microsoft Windows
svchost.exe 3,256 K 5,900 K 756 (Verified) Microsoft Windows
spoolsv.exe 4,800 K 5,856 K 1428 (Verified) Microsoft Windows
services.exe 5,204 K 5,644 K 640
csrss.exe 0.14 1,528 K 5,360 K 544
WmiPrvSE.exe 2,132 K 5,012 K 1456
svchost.exe 2,812 K 5,012 K 892 (Verified) Microsoft Windows
wmpnetwk.exe < 0.01 8,172 K 4,876 K 3924 (Verified) Microsoft Windows
winlogon.exe 2,168 K 4,472 K 600
ggdllhost.exe 2,380 K 4,436 K 2424
taskeng.exe 1,476 K 4,392 K 2284
SearchFilterHost.exe 1,280 K 4,168 K 1732
sqlwriter.exe 1,420 K 3,744 K 332 (Verified) Microsoft Corporation
svchost.exe 1,972 K 3,664 K 1204 (Verified) Microsoft Windows
IPROSetMonitor.exe 1,140 K 3,640 K 1720 (Verified) Intel® INTELND1617S2
svchost.exe 1,256 K 3,504 K 348 (Verified) Microsoft Windows
csrss.exe < 0.01 1,316 K 2,964 K 472
lsm.exe 1,456 K 2,756 K 656
wininit.exe 916 K 2,720 K 536
sqlbrowser.exe 976 K 2,560 K 1984 (Verified) Microsoft Corporation
conhost.exe 768 K 2,544 K 5124 (Verified) Microsoft Windows
NVIDIA Web Helper.exe 0.01 23,120 K 2,164 K 5080 (Verified) NVIDIA Corporation
sqlservr.exe < 0.01 42,660 K 1,664 K 1756 (Verified) Microsoft Corporation
ggdllhost.exe 1,500 K 1,304 K 2368
smss.exe 312 K 624 K 296
System 0.13 52 K 592 K 4
Scheduler.exe 0.01 9,004 K 520 K 4688
GoogleCrashHandler.exe 1,128 K 520 K 2316
System Idle Process 94.05 0 K 12 K 0
Interrupts 0.75 0 K 0 K n/a
 
Sorry for the late response.

Edited by lanznoob, 15 August 2017 - 05:35 AM.

  • 0

#37
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,024 posts
  • MVP

This is probably your problem:

 

Start:

 

utorrentie.exe < 0.01 28,868 K 45,168 K 1128 (Verified) BitTorrent Inc
utorrentie.exe 22,292 K 43,516 K 3668 (Verified) BitTorrent Inc
utorrentie.exe < 0.01 28,524 K 43,096 K 1692 (Verified) BitTorrent Inc

 

15 min:

 

utorrentie.exe < 0.01 29,052 K 136,964 K 1128 (Verified) BitTorrent Inc
utorrentie.exe < 0.01 28,556 K 135,816 K 1692 (Verified) BitTorrent Inc
utorrentie.exe < 0.01 22,264 K 109,716 K 3668 (Verified) BitTorrent Inc
 
utorrent seems to be growing.  Try uninstalling it.

  • 0

#38
lanznoob

lanznoob

    Member

  • Member
  • PipPip
  • 10 posts

I've uninstalled it, but same problem still occurs but now it is better because when I got that utorrent, the problem will occur 2.4hours but now i think it will occur after 6 hours.


  • 0

#39
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,024 posts
  • MVP

OK.  Give me two process explorer logs an hour apart.  Without any changes to running programs.


  • 0

#40
lanznoob

lanznoob

    Member

  • Member
  • PipPip
  • 10 posts
Process CPU Private Bytes Working Set PID Verified Signer
ekrn.exe 0.04 15,892 K 43,388 K 824 (Verified) ESET
explorer.exe 0.02 23,192 K 37,332 K 308 (Verified) Microsoft Windows
procexp.exe 1.85 17,392 K 33,528 K 1812 (Verified) Microsoft Corporation
nvcontainer.exe 0.01 21,016 K 31,052 K 2184 (Verified) NVIDIA Corporation
egui.exe < 0.01 17,520 K 27,744 K 2492 (Verified) ESET
dwm.exe 0.20 29,320 K 26,200 K 1892 (Verified) Microsoft Windows
svchost.exe 0.06 13,188 K 22,092 K 1080 (Verified) Microsoft Windows
wmpnetwk.exe < 0.01 8,272 K 21,756 K 3960 (Verified) Microsoft Windows
audiodg.exe < 0.01 17,852 K 16,684 K 1180
nvcontainer.exe 0.02 5,288 K 15,896 K 1636 (Verified) NVIDIA Corporation
NvOAWrapperCache.exe < 0.01 12,164 K 14,836 K 2212 (Verified) NVIDIA Corporation
svchost.exe 0.01 14,144 K 14,244 K 968 (Verified) Microsoft Windows
svchost.exe < 0.01 7,100 K 13,080 K 1244 (Verified) Microsoft Windows
svchost.exe < 0.01 4,804 K 12,012 K 1044 (Verified) Microsoft Windows
svchost.exe 0.08 10,448 K 11,732 K 1508 (Verified) Microsoft Windows
svchost.exe < 0.01 12,240 K 11,568 K 1320 (Verified) Microsoft Windows
WmiPrvSE.exe < 0.01 6,316 K 10,716 K 2888
svchost.exe < 0.01 8,352 K 10,548 K 4084 (Verified) Microsoft Windows
svchost.exe < 0.01 5,248 K 9,892 K 3232 (Verified) Microsoft Windows
WmiPrvSE.exe < 0.01 4,172 K 9,820 K 2880
lsass.exe 4,200 K 9,704 K 608 (Verified) Microsoft Windows
NvTelemetryContainer.exe < 0.01 4,160 K 9,480 K 1804 (Verified) NVIDIA Corporation
taskhost.exe < 0.01 6,084 K 9,008 K 1932 (Verified) Microsoft Windows
spoolsv.exe < 0.01 4,852 K 8,872 K 1460 (Verified) Microsoft Windows
SolvusoftTray.exe < 0.01 3,812 K 8,716 K 2444 (Verified) Installer Wizard
USBGuard.exe 0.01 1,972 K 7,436 K 2392 (No signature was present in the subject) Zbshareware Lab
services.exe 0.09 4,520 K 7,348 K 584
svchost.exe < 0.01 3,280 K 7,268 K 764 (Verified) Microsoft Windows
ggdllhost.exe < 0.01 2,436 K 6,732 K 1088
NVDisplay.Container.exe < 0.01 1,956 K 6,232 K 852 (Verified) NVIDIA Corporation
svchost.exe < 0.01 3,528 K 6,068 K 1624 (Verified) Microsoft Windows
SearchIndexer.exe 0.01 12,864 K 5,948 K 3516 (Verified) Microsoft Windows
Scheduler.exe 0.01 8,984 K 5,872 K 2460
winlogon.exe < 0.01 2,252 K 5,840 K 648
svchost.exe 0.01 2,744 K 5,772 K 904 (Verified) Microsoft Windows
WmiPrvSE.exe 2,324 K 5,304 K 3972
taskeng.exe < 0.01 1,624 K 5,104 K 2004
sqlwriter.exe 0.01 1,544 K 4,992 K 2200 (Verified) Microsoft Corporation
csrss.exe 0.08 1,892 K 4,936 K 544
ggdllhost.exe < 0.01 1,576 K 4,908 K 480
svchost.exe 1,708 K 4,572 K 1212 (Verified) Microsoft Windows
IPROSetMonitor.exe 1,192 K 4,476 K 1688 (Verified) Intel® INTELND1617S2
svchost.exe 1,296 K 4,392 K 2240 (Verified) Microsoft Windows
taskeng.exe < 0.01 1,148 K 3,872 K 1884
wininit.exe 964 K 3,396 K 536
csrss.exe 0.01 1,432 K 3,384 K 472
sqlbrowser.exe 972 K 3,344 K 488 (Verified) Microsoft Corporation
lsm.exe 1,352 K 3,240 K 616
sqlservr.exe < 0.01 43,500 K 1,892 K 1816 (Verified) Microsoft Corporation
smss.exe 312 K 868 K 296
System 1.20 52 K 624 K 4
GoogleCrashHandler.exe < 0.01 1,136 K 472 K 712
System Idle Process 95.88 0 K 12 K 0
Interrupts 0.36 0 K 0 K n/a
 
 
 
Process CPU Private Bytes Working Set PID Verified Signer
chrome.exe 0.01 129,128 K 161,944 K 2452 (Verified) Google Inc
chrome.exe 82,864 K 108,448 K 5748 (Verified) Google Inc
chrome.exe 0.02 76,552 K 93,720 K 3328 (Verified) Google Inc
svchost.exe 0.12 78,904 K 85,536 K 1044 (Verified) Microsoft Windows
ekrn.exe < 0.01 21,732 K 85,500 K 824 (Verified) ESET
Steam.exe 0.24 44,472 K 66,544 K 5548 (Verified) Valve
chrome.exe 20,816 K 51,688 K 5840 (Verified) Google Inc
explorer.exe 0.08 25,468 K 41,052 K 308 (Verified) Microsoft Windows
chrome.exe 39,524 K 40,504 K 5608 (Verified) Google Inc
procexp.exe 2.97 18,228 K 34,328 K 5688 (Verified) Microsoft Corporation
steamwebhelper.exe 0.03 20,004 K 33,564 K 2844 (Verified) Valve
dwm.exe 0.70 30,144 K 32,992 K 1892 (Verified) Microsoft Windows
nvcontainer.exe 0.01 18,536 K 29,060 K 2184 (Verified) NVIDIA Corporation
svchost.exe 1.35 16,412 K 27,252 K 1080 (Verified) Microsoft Windows
egui.exe < 0.01 14,992 K 26,076 K 2492 (Verified) ESET
svchost.exe 0.09 49,332 K 17,908 K 4324 (Verified) Microsoft Windows
svchost.exe 20,664 K 16,872 K 968 (Verified) Microsoft Windows
audiodg.exe 17,772 K 16,832 K 5652
nvcontainer.exe 0.03 5,224 K 15,864 K 1636 (Verified) NVIDIA Corporation
svchost.exe < 0.01 7,440 K 14,636 K 1244 (Verified) Microsoft Windows
svchost.exe < 0.01 13,924 K 13,472 K 1320 (Verified) Microsoft Windows
svchost.exe 9,824 K 12,180 K 4084 (Verified) Microsoft Windows
svchost.exe 11,224 K 11,936 K 1508 (Verified) Microsoft Windows
SteamService.exe < 0.01 7,020 K 11,596 K 3728 (Verified) Valve
NvTelemetryContainer.exe < 0.01 5,508 K 10,672 K 1804 (Verified) NVIDIA Corporation
taskhost.exe < 0.01 10,588 K 10,668 K 1932 (Verified) Microsoft Windows
lsass.exe 4,396 K 9,980 K 608 (Verified) Microsoft Windows
svchost.exe 0.01 5,324 K 9,828 K 3232 (Verified) Microsoft Windows
SolvusoftTray.exe < 0.01 3,812 K 8,836 K 2444 (Verified) Installer Wizard
spoolsv.exe 4,692 K 8,816 K 1460 (Verified) Microsoft Windows
SearchIndexer.exe < 0.01 17,492 K 8,776 K 3516 (Verified) Microsoft Windows
svchost.exe 4,140 K 8,364 K 1624 (Verified) Microsoft Windows
svchost.exe 0.07 3,200 K 7,824 K 764 (Verified) Microsoft Windows
wmpnetwk.exe < 0.01 8,204 K 7,744 K 3960 (Verified) Microsoft Windows
USBGuard.exe 0.01 2,000 K 7,616 K 2392 (No signature was present in the subject) Zbshareware Lab
services.exe 4,432 K 7,464 K 584
sppsvc.exe 1,992 K 7,172 K 4716 (Verified) Microsoft Windows
ggdllhost.exe 2,620 K 6,976 K 1088
csrss.exe 0.22 2,024 K 6,768 K 544
svchost.exe 0.08 2,848 K 5,868 K 904 (Verified) Microsoft Windows
winlogon.exe 2,180 K 5,856 K 648
chrome.exe 3,028 K 5,308 K 5568 (Verified) Google Inc
taskeng.exe 1,512 K 5,032 K 2004
sqlwriter.exe 1,432 K 4,960 K 2200 (Verified) Microsoft Corporation
svchost.exe 2,024 K 4,912 K 1212 (Verified) Microsoft Windows
WmiPrvSE.exe 2,036 K 4,896 K 2632
chrome.exe 1,356 K 4,744 K 4928 (Verified) Google Inc
IPROSetMonitor.exe 1,140 K 4,464 K 1688 (Verified) Intel® INTELND1617S2
svchost.exe 1,268 K 4,408 K 2240 (Verified) Microsoft Windows
taskeng.exe 1,072 K 3,844 K 5600
sqlbrowser.exe 972 K 3,764 K 488 (Verified) Microsoft Corporation
csrss.exe < 0.01 1,504 K 3,652 K 472
wininit.exe 928 K 3,384 K 536
lsm.exe 1,480 K 3,348 K 616
conhost.exe 776 K 2,908 K 2984 (Verified) Microsoft Windows
sqlservr.exe < 0.01 40,884 K 2,452 K 1816 (Verified) Microsoft Corporation
ggdllhost.exe 1,524 K 2,104 K 480
NVIDIA Web Helper.exe 0.01 28,764 K 1,300 K 724 (Verified) NVIDIA Corporation
smss.exe 312 K 868 K 296
System 0.14 52 K 652 K 4
GoogleCrashHandler.exe 1,128 K 520 K 712
System Idle Process 92.98 0 K 12 K 0
Interrupts 0.80 0 K 0 K n/a
 

 


  • 0

Advertisements


#41
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,024 posts
  • MVP

Before:

ekrn.exe 0.04 15,892 K 43,388 K 824 (Verified) ESET

svchost.exe < 0.01 4,804 K 12,012 K 1044 (Verified) Microsoft Windows

 

After:

svchost.exe 0.12 78,904 K 85,536 K 1044 (Verified) Microsoft Windows
ekrn.exe < 0.01 21,732 K 85,500 K 824 (Verified) ESET
Steam.exe 0.24 44,472 K 66,544 K 5548 (Verified) Valve
 
I would start with ESET.  Since it doubled its memory use.  Check it after several hours and see if it still climbs without limit.
 
Also
 
Get RAMMap
 
Download Latest Version
 
Right click on downloaded file and Extract All, Extract.  Right click on rammap.exe and Run As Admin. Yes.
 
File, Save, note name & location.  Zip up the file and Attach the file to your next post.   Attaching is a multi step process.
 
First click on More Reply Options
Then scroll down to where you see
Choose File and click on it.  Point it at the file and hit Open.
Now click on Attach this file.
 
If you do not have zip capabilities, FRST can zip it for you.  Say the file is at:   C:\junk.RMP then you would put:
 
zip: C:\junk.rmp
 
in the Search Box then hit
Fix.  It should create a file Date_Time.zip on your desktop.
 
if fixing from the Search Box does not work just make a textfile using notepad with 
zip: C:\junk.rmp
the save it as fixlist to the same folder as FRST.
 
 
 

  • 0

#42
lanznoob

lanznoob

    Member

  • Member
  • PipPip
  • 10 posts

I can't post it It's above 5mb. Sorry for my late reply.


  • 0

#43
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,024 posts
  • MVP

OK take a screenshot of the first page.


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP